Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e35392e3235322e302f32342d3234203d3e20313336373837.roa
File: 3139342e35392e3235322e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: nMnhtcvm9qCpA8USa2bJUIaXDPi5m4hFgJg+xaFpFb4=
Subject key identifier: DA:6F:28:65:45:D2:8D:BC:7B:67:F1:05:A6:A0:27:1D:FD:32:65:A0
Certificate issuer: /CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Certificate serial: 2AB1D69B4CDDA1BEFB0BEA5A56AB8B5ABEDDE24F
Authority key identifier: 09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e35392e3235322e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 27 Dec 2024 11:47:32 +0000
ROA not before: Fri 27 Dec 2024 11:42:32 +0000
ROA not after: Fri 26 Dec 2025 11:47:32 +0000
asID: 136787
IP address blocks: 194.59.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:b1:d6:9b:4c:dd:a1:be:fb:0b:ea:5a:56:ab:8b:5a:be:dd:e2:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097a28f77eb0a4ac354a8ac28754b2a3bbe3a959
Validity
Not Before: Dec 27 11:42:32 2024 GMT
Not After : Dec 26 11:47:32 2025 GMT
Subject: CN=DA6F286545D28DBC7B67F105A6A0271DFD3265A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3e:58:b5:fc:f6:00:17:24:e0:2f:31:b5:6a:
d9:76:10:7c:a0:90:3c:d0:d2:fa:04:de:14:ac:61:
3e:48:20:fe:06:83:7d:78:dd:40:9e:e1:62:d1:4b:
41:26:08:bb:0c:ac:30:0b:08:7e:54:53:ae:d0:6e:
a7:ea:c9:5e:d0:4a:90:22:33:74:98:a7:64:a0:a0:
08:bf:db:81:7a:76:22:8c:9d:c5:50:31:5d:ea:0f:
a7:c4:c3:29:29:54:84:82:8d:8b:4c:f4:e7:a3:19:
08:bd:34:dd:e8:14:03:aa:e1:f4:7d:77:2e:67:5d:
9d:6d:28:05:3e:fd:b5:ee:43:70:02:cc:57:12:b0:
31:f0:0d:f1:aa:c5:8c:87:20:da:61:64:c7:ac:b0:
2a:71:40:aa:eb:5a:f5:d6:01:54:87:e4:bf:01:15:
fa:f8:f0:73:4e:29:05:cf:ad:17:4f:98:c6:06:ac:
0c:7d:5d:bd:3e:7b:bc:8b:47:9a:44:e9:c3:44:f6:
29:61:00:b3:5a:36:3b:7a:87:ee:c3:53:bd:24:5a:
b3:c0:0b:d7:06:54:e8:bf:95:7c:8a:bb:b5:1d:8d:
ce:57:43:3a:ad:30:b7:61:c9:56:6b:ff:5f:b9:61:
27:c0:f4:9d:be:03:42:f8:ce:fe:56:48:20:ba:05:
c9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:6F:28:65:45:D2:8D:BC:7B:67:F1:05:A6:A0:27:1D:FD:32:65:A0
X509v3 Authority Key Identifier:
keyid:09:7A:28:F7:7E:B0:A4:AC:35:4A:8A:C2:87:54:B2:A3:BB:E3:A9:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/097A28F77EB0A4AC354A8AC28754B2A3BBE3A959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXoo936wpKw1SorCh1Syo7vjqVk.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/177/3139342e35392e3235322e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.252.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:c1:b5:a9:83:10:5e:30:7d:b9:f1:05:c5:c9:d2:26:a9:ca:
6d:a8:2d:93:61:ac:f5:d1:b9:4d:d1:22:f4:1f:f1:29:3b:2a:
69:52:40:5b:37:ca:cf:78:64:31:60:21:69:29:67:74:a7:bc:
bc:99:2c:2c:b0:c2:92:43:7d:8f:bb:29:b3:d4:eb:b8:28:c7:
8f:e8:11:e5:16:b3:0d:08:15:9d:8a:55:69:c2:8e:ba:5f:b4:
5c:47:7d:eb:5e:7b:8d:25:81:89:7e:ce:22:08:0d:04:9a:76:
c8:fa:c3:05:ce:3a:32:3d:30:7a:71:6b:70:04:f4:83:7e:36:
80:10:38:f8:12:2b:6f:ad:9a:72:31:f6:ac:74:ff:2e:f2:34:
eb:1a:be:07:49:26:73:af:03:02:8c:fe:b8:06:c4:58:d1:6e:
59:51:75:55:c4:a7:3a:18:f7:25:d6:75:76:e6:d6:54:35:05:
0b:d0:e8:c7:c5:73:e8:14:c6:c3:72:21:c8:65:4e:3e:a8:d2:
d6:3c:71:28:d5:62:83:3a:1e:f9:9a:84:08:91:0d:3e:23:f1:
4d:00:26:e1:e3:4e:10:c3:7a:e8:f1:09:f2:f2:70:d1:a3:c4:
92:41:90:ba:53:57:b2:39:53:04:ae:e9:e6:56:f3:1f:e5:a4:
d3:cb:dd:97
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:02:00 2025 by rpki-client